Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
facebook vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2008-0659
Stack-based buffer overflow in Aurigma Image Uploader ActiveX control (ImageUploader4.ocx) 4.5.70 and previous versions, as used in MySpace MySpaceUploader.ocx 1.0.0.4, allows remote malicious users to execute arbitrary code via a long Action property.
Myspace Myspaceuploader 1.0.0.4
Aurigma Image Uploader Activex Control
1 EDB exploit
945
VMScore
CVE-2008-5711
Heap-based buffer overflow in the Facebook PhotoUploader ActiveX control 5.0.14.0 and previous versions allows remote malicious users to execute arbitrary code via a long FileMask property value.
Facebook Photouploader 4.5.57.0
Facebook Photouploader
3 EDB exploits
935
VMScore
CVE-2008-0660
Multiple stack-based buffer overflows in Aurigma Image Uploader ActiveX control (ImageUploader4.ocx) 4.6.17.0, 4.5.70.0, and 4.5.126.0, and ImageUploader5 5.0.10.0, as used by Facebook PhotoUploader 4.5.57.0, allow remote malicious users to execute arbitrary code via long (1) Ext...
Facebook Photouploader 4.5.57.0
Aurigma Image Uploader Activex Control 4.6.17.0
Aurigma Image Uploader Activex Control 5.0.10.0
Facebook Facebook
Aurigma Image Uploader Activex Control 4.5.126.0
Aurigma Image Uploader Activex Control 4.5.70.0
1 EDB exploit
890
VMScore
CVE-2018-6342
react-dev-utils on Windows allows developers to run a local webserver for accepting various commands, including a command to launch an editor. The input to that command was not properly sanitized, allowing an attacker who can make a network request to the server (either via CSRF ...
Facebook React-dev-utils
755
VMScore
CVE-2018-6367
SQL Injection exists in Vastal I-Tech Buddy Zone Facebook Clone 2.9.9 via the /chat_im/chat_window.php request_id parameter or the /search_events.php category parameter.
Vastal I-tech Buddy Zone Facebook Clone 2.9.9
1 EDB exploit
755
VMScore
CVE-2018-5978
SQL Injection exists in Facebook Style Php Ajax Chat Zechat 1.5 via the login.php User field.
Zechat Project Zechat 1.5
1 EDB exploit
755
VMScore
CVE-2010-5056
SQL injection vulnerability in the GBU Facebook (com_gbufacebook) component 1.0.5 for Joomla! allows remote malicious users to execute arbitrary SQL commands via the face_id parameter in a show_face action to index.php.
Gbu Grafici Com Gbufacebook 1.0.5
1 EDB exploit
695
VMScore
CVE-2019-11924
A peer could send empty handshake fragments containing only padding which would be kept in memory until a full handshake was received, resulting in memory exhaustion. This issue affects versions v2019.01.28.00 and above of fizz, until v2019.08.05.00.
Facebook Fizz
3 Github repositories
670
VMScore
CVE-2019-3568
A buffer overflow vulnerability in WhatsApp VOIP stack allowed remote code execution via specially crafted series of RTCP packets sent to a target phone number. The issue affects WhatsApp for Android prior to v2.19.134, WhatsApp Business for Android prior to v2.19.44, WhatsApp fo...
Whatsapp Whatsapp
7 Github repositories
4 Articles
668
VMScore
CVE-2021-24044
By passing invalid javascript code where await and yield were called upon non-async and non-generator getter/setter functions, Hermes would invoke generator functions and error out on invalid await/yield positions. This could result in segmentation fault as a consequence of type ...
Facebook Hermes
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »